Threat Intelligence Bulletin – Router RATs, Chinese APTs, and the 25 Most Dangerous Software Flaws
Phishing campaign using Azure Front Door in attacks
Outline of phishing campaign abusing QuickBooks cloud domain
Experts warn of emerging “Black Basta” ransomware expanding to target a wide range of industries
Ransomware intrusion attempt leveraged Mitel VoIP appliance as entry to point to environment
Chinese APT using ransomware to obfuscate espionage, IP theft objectives
- https://thehackernews.com/2022/06/state-backed-hackers-using-ransomware.html
- https://www.darkreading.com/attacks-breaches/chinese-apt-ransomware-attacks-cover-ip-theft
Recently detected ZuoRAT malware campaign targets routers to enumerate network, collect data, and hijack internet traffic
- https://www.helpnetsecurity.com/2022/06/28/zuorat-malware-routers/
- https://arstechnica.com/information-technology/2022/06/a-wide-range-of-routers-are-under-attack-by-new-unusually-sophisticated-malware/
OpenSSL v3.0.4 found vulnerable on x64 systems with AVX-512 instruction set
Phishing campaign using chat-bot features to phish for sensitive information
Top 25 “most dangerous” software flaws according to Homeland Security, CISA, and MITRE
Linux memory corruption bug PwnKit allows unprivileged users to gain root privileges on